Nathan Whipple whip113
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # First, create a VM with enough resources to stand up multiple Conjur intances. I recommmend 4vCPU and 10GB of memory minimum. | |
| # Don't forget to enable virtualization on your VM CPU settings | |
| # I used Ubuntu with the `kvm` driver here. If you use a different distro you can find the minishift pre-req's and correct binary at | |
| # https://docs.openshift.org/latest/minishift/getting-started/preparing-to-install.html | |
| # Install Docker | |
| #Install pre-req packages | |
| sudo apt-get install -y curl \ | |
| apt-transport-https \ | |
| ca-certificates \ |
whip113
/ cybr_priv_key.json
Last active
October 9, 2018 21:14
Custom Credentials for Ansible Tower - CyberArk Private Key
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| "name": "CyberArk Private Key", | |
| "description": "Uses client certificate authentication to CyberArk CCP", | |
| "kind": "cloud", | |
| "managed_by_tower": false, | |
| "inputs": { | |
| "fields": [ | |
| { | |
| "label": "Private Key", | |
| "secret": true, | |
| "multiline": true, |
whip113
/ cybr_client_cert.json
Last active
October 9, 2018 21:14
Custom Credentials for Ansible Tower - CyberArk Client Certificate
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| "name": "Cyberark Client Certificate", | |
| "description": "", | |
| "kind": "cloud", | |
| "managed_by_tower": false, | |
| "inputs": { | |
| "fields": [ | |
| { | |
| "label": "Client Certificate", | |
| "secret": true, | |
| "multiline": true, |
whip113
/ conjur_identity.json
Last active
October 9, 2018 21:13
Custom Credential for Ansible Tower - Conjur Identity
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| "name": "Conjur API Key", | |
| "description": "", | |
| "kind": "cloud", | |
| "managed_by_tower": false, | |
| "inputs": { | |
| "fields": [ | |
| { | |
| "secret": true, | |
| "type": "string", | |
| "id": "api_key", |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - !policy | |
| id: conjur | |
| body: | |
| - !policy | |
| id: cluster/my-policy-cluster-name | |
| body: | |
| - !layer | |
| - &hosts | |
| - !host | |
| id: conjur1.example.com |
whip113
/ gist:9c83078aac308047a29776f92def9025
Created
November 15, 2018 21:19
Sample: Conjur Follower Deployment YAML
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: extensions/v1beta1 | |
| kind: Deployment | |
| metadata: | |
| name: conjur-follower | |
| spec: | |
| replicas: 1 | |
| strategy: | |
| type: Recreate | |
| template: | |
| metadata: |
whip113
/ cli-app.yml
Last active
November 5, 2019 19:07
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: apps/v1beta1 | |
| kind: Deployment | |
| metadata: | |
| labels: | |
| app: cli-app | |
| name: cli-app | |
| spec: | |
| replicas: 1 | |
| selector: |
whip113
/ Upgrade_Standbys
Last active
February 14, 2020 20:23
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| read -p "Enter the FQDN of the Master: " MASTER | |
| read -p "Enter the FQDN of the first Standby: " STANDBY1 | |
| read -p "Enter the FQDN of the second Standby: " STANDBY2 | |
| read -p "Enter the Docker container name: " CONTAINER | |
| read -p "Enter the Docker image tag: " TAG | |
| read -p "Enter the cluster name: " CLUSTER | |
| read -p "Enter the full path to the Docker image file name: " IMAGE | |
| read -p "Enter the filename of the backup: " BACKUP_FILE |